Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/znqlwIKhZLyUxIyY_V9-DORbh54.roa
File: znqlwIKhZLyUxIyY_V9-DORbh54.roa (raw, json)
Hash identifier: tba4BCNrWHf1YIvAWBviRZx3s/Jbrl8aqZjkD+JZHyg=
Subject key identifier: CE:7A:A5:C0:82:A1:64:BC:94:C4:8C:98:FD:5F:7E:0C:E4:5B:87:9E
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 018409750E85729C8B004809E06A895FEECD
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/znqlwIKhZLyUxIyY_V9-DORbh54.roa
Signing time: Mon 24 Oct 2022 10:06:16 +0000
ROA not before: Mon 24 Oct 2022 10:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36692
IP address blocks: 185.60.84.0/23 maxlen: 24
185.60.86.0/24 maxlen: 24
185.60.87.0/24 maxlen: 24
146.112.60.0/24 maxlen: 24
146.112.10.0/24 maxlen: 24
146.112.41.0/24 maxlen: 24
146.112.170.0/24 maxlen: 24
146.112.174.0/24 maxlen: 24
146.112.180.0/24 maxlen: 24
146.112.131.0/24 maxlen: 24
146.112.132.0/24 maxlen: 24
146.112.128.0/24 maxlen: 24
146.112.129.0/24 maxlen: 24
146.112.130.0/24 maxlen: 24
146.112.133.0/24 maxlen: 24
146.112.134.0/24 maxlen: 24
146.112.135.0/24 maxlen: 24
146.112.136.0/24 maxlen: 24
146.112.137.0/24 maxlen: 24
146.112.138.0/24 maxlen: 24
146.112.139.0/24 maxlen: 24
155.190.192.0/24 maxlen: 24
155.190.193.0/24 maxlen: 24
155.190.194.0/24 maxlen: 24
155.190.195.0/24 maxlen: 24
155.190.196.0/24 maxlen: 24
155.190.197.0/24 maxlen: 24
155.190.201.0/24 maxlen: 24
155.190.202.0/24 maxlen: 24
155.190.203.0/24 maxlen: 24
155.190.232.0/24 maxlen: 24
155.190.28.0/24 maxlen: 24
155.190.29.0/24 maxlen: 24
155.190.38.0/24 maxlen: 24
155.190.32.0/24 maxlen: 24
155.190.33.0/24 maxlen: 24
155.190.34.0/24 maxlen: 24
155.190.35.0/24 maxlen: 24
155.190.36.0/24 maxlen: 24
155.190.37.0/24 maxlen: 24
155.190.39.0/24 maxlen: 24
155.190.40.0/24 maxlen: 24
155.190.41.0/24 maxlen: 24
155.190.42.0/24 maxlen: 24
155.190.43.0/24 maxlen: 24
155.190.44.0/24 maxlen: 24
155.190.45.0/24 maxlen: 24
155.190.46.0/24 maxlen: 24
155.190.47.0/24 maxlen: 24
155.190.48.0/24 maxlen: 24
155.190.49.0/24 maxlen: 24
155.190.50.0/24 maxlen: 24
155.190.51.0/24 maxlen: 24
155.190.53.0/24 maxlen: 24
155.190.54.0/24 maxlen: 24
155.190.55.0/24 maxlen: 24
155.190.0.0/24 maxlen: 24
155.190.4.0/24 maxlen: 24
155.190.3.0/24 maxlen: 24
155.190.1.0/24 maxlen: 24
155.190.2.0/24 maxlen: 24
155.190.8.0/24 maxlen: 24
155.190.9.0/24 maxlen: 24
155.190.15.0/24 maxlen: 24
155.190.17.0/24 maxlen: 24
155.190.18.0/24 maxlen: 24
155.190.19.0/24 maxlen: 24
155.190.20.0/24 maxlen: 24
155.190.21.0/24 maxlen: 24
155.190.22.0/24 maxlen: 24
2a04:e4c0:25::/48 maxlen: 48
2a04:e4c0:14::/48 maxlen: 48
2a04:e4c0:22::/48 maxlen: 48
2a04:e4c0:11::/48 maxlen: 48
2a04:e4c0:47::/48 maxlen: 48
2a04:e4c0:55::/48 maxlen: 48
2a04:e4c0:30::/48 maxlen: 48
2a04:e4c0:44::/48 maxlen: 48
2a04:e4c7:fffd::/48 maxlen: 48
2a04:e4c0:52::/48 maxlen: 48
2a04:e4c4:3::/48 maxlen: 48
2a04:e4c0:41::/48 maxlen: 48
2a04:e4c0:60::/48 maxlen: 48
2a04:e4c0:13::/48 maxlen: 48
2a04:e4c0:16::/48 maxlen: 48
2a04:e4c7:ffff::/48 maxlen: 48
2a04:e4c0:10::/48 maxlen: 48
2a04:e4c0:49::/48 maxlen: 48
2a04:e4c0:24::/48 maxlen: 48
2a04:e4c0:43::/48 maxlen: 48
2a04:e4c0:46::/48 maxlen: 48
2a04:e4c0:21::/48 maxlen: 48
2a04:e4c0:40::/48 maxlen: 48
2a04:e4c7:fffe::/48 maxlen: 48
2a04:e4c4:1::/48 maxlen: 48
2a04:e4c0:54::/48 maxlen: 48
2a04:e4c0:62::/48 maxlen: 48
2a04:e4c0:18::/48 maxlen: 48
2a04:e4c4:4::/48 maxlen: 48
2a04:e4c0:51::/48 maxlen: 48
2a04:e4c0:15::/48 maxlen: 48
2a04:e4c0:12::/48 maxlen: 48
2a04:e4c0:48::/48 maxlen: 48
2a04:e4c0:23::/48 maxlen: 48
2a04:e4c0:45::/48 maxlen: 48
2a04:e4c0:20::/48 maxlen: 48
2a04:e4c0:59::/48 maxlen: 48
2a04:e4c0:42::/48 maxlen: 48
2a04:e4c0:53::/48 maxlen: 48
2a04:e4c0:56::/48 maxlen: 48
2a04:e4c0:31::/48 maxlen: 48
2a04:e4c4:2::/48 maxlen: 48
2a04:e4c0:61::/48 maxlen: 48
2a04:e4c0:17::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:75:0e:85:72:9c:8b:00:48:09:e0:6a:89:5f:ee:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Oct 24 10:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce7aa5c082a164bc94c48c98fd5f7e0ce45b879e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ac:b3:ea:ff:06:db:bd:9c:0f:07:9f:cb:5a:
fe:c6:04:b5:20:2a:01:98:76:78:07:1b:60:00:05:
6f:28:e5:83:cc:89:16:fa:3e:4c:a9:e8:fc:b7:e0:
b9:a0:c2:ef:81:80:3e:89:f3:fb:2b:20:9e:ed:02:
1a:3b:66:22:0f:57:25:73:c4:da:da:c5:3b:32:c0:
10:a1:56:31:d8:c7:46:fa:01:c0:d6:a6:df:49:2b:
82:83:43:c4:03:05:00:c3:0f:6c:ef:65:9b:66:e7:
65:26:95:2c:8e:7e:62:af:ab:f4:44:20:12:eb:21:
3d:e8:14:73:c6:13:7c:36:d9:85:1e:68:85:ca:b4:
95:88:c4:14:ae:41:fc:02:74:3d:63:50:bb:d0:8c:
a7:d1:0f:af:c3:e1:68:6b:99:1e:2f:6a:07:ee:42:
e4:ed:04:de:8f:d3:b5:fd:ba:9d:30:b7:13:98:e2:
80:09:83:77:1f:bb:b1:d5:c9:ea:9d:e5:98:99:d3:
1b:69:a5:ad:a9:e7:c1:05:6d:21:cf:23:62:7b:1c:
8c:52:76:a0:c9:d9:4d:ab:2c:7d:59:69:14:bf:a0:
3b:46:f8:8a:ce:1b:b7:dc:2f:a7:7e:72:51:94:0c:
19:e4:cf:8a:8d:a1:73:39:79:22:90:a9:10:39:38:
b6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7A:A5:C0:82:A1:64:BC:94:C4:8C:98:FD:5F:7E:0C:E4:5B:87:9E
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/znqlwIKhZLyUxIyY_V9-DORbh54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.112.10.0/24
146.112.41.0/24
146.112.60.0/24
146.112.128.0-146.112.139.255
146.112.170.0/24
146.112.174.0/24
146.112.180.0/24
155.190.0.0-155.190.4.255
155.190.8.0/23
155.190.15.0/24
155.190.17.0-155.190.22.255
155.190.28.0/23
155.190.32.0-155.190.51.255
155.190.53.0-155.190.55.255
155.190.192.0-155.190.197.255
155.190.201.0-155.190.203.255
155.190.232.0/24
185.60.84.0/22
IPv6:
2a04:e4c0:10::-2a04:e4c0:18:ffff:ffff:ffff:ffff:ffff
2a04:e4c0:20::-2a04:e4c0:25:ffff:ffff:ffff:ffff:ffff
2a04:e4c0:30::/47
2a04:e4c0:40::-2a04:e4c0:49:ffff:ffff:ffff:ffff:ffff
2a04:e4c0:51::-2a04:e4c0:56:ffff:ffff:ffff:ffff:ffff
2a04:e4c0:59::/48
2a04:e4c0:60::-2a04:e4c0:62:ffff:ffff:ffff:ffff:ffff
2a04:e4c4:1::-2a04:e4c4:4:ffff:ffff:ffff:ffff:ffff
2a04:e4c7:fffd::-2a04:e4c7:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
bc:f3:13:db:a0:07:4a:a4:ce:b8:dd:41:59:b8:30:73:0e:14:
1d:91:9e:bc:07:b8:9a:4a:f9:da:cf:a3:26:a7:5f:51:2b:1b:
df:ea:43:ae:b1:67:da:94:60:c7:f2:34:6c:1e:99:de:98:a3:
2b:a8:66:2b:d5:08:59:b3:61:6d:d8:60:51:96:1e:2d:06:32:
c5:69:16:ee:db:16:a2:c4:d7:d6:e5:32:6f:08:fc:4c:f0:ea:
b3:ee:6f:d5:09:f7:a2:79:f0:34:1a:a2:2d:5d:57:85:2a:d0:
1f:d4:d9:23:55:04:89:03:92:bf:b7:89:94:61:76:74:e1:ec:
4f:3b:ee:2f:4e:52:24:5a:63:44:4b:7d:50:6a:78:93:21:cf:
56:e9:60:4a:1d:7f:90:42:ec:78:5f:14:12:ed:be:c6:9d:cf:
ae:11:ef:c5:90:f0:20:16:e3:eb:87:a3:aa:ab:90:b9:d0:98:
3b:97:8c:ac:8c:d7:56:bc:8d:64:cc:3a:2c:7c:36:c8:b1:2d:
91:76:dc:93:c0:87:a5:00:1d:91:4b:ae:ec:26:6c:5f:4b:84:
4b:71:38:c4:f9:5d:72:f3:e7:da:fd:e2:23:a1:59:07:95:c8:
81:3e:51:c8:ab:c7:8f:85:08:74:cc:72:65:1d:a1:f1:0e:69:
3c:ac:d5:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org